home | list info | list archive | date index | thread index

Re: [OCLUG-Tech] So, I'm a relative newbie...

  • Subject: Re: [OCLUG-Tech] So, I'm a relative newbie...
  • From: Martin Hicks <mort [ at ] bork [ dot ] org>
  • Date: Sat, 28 Oct 2006 15:10:35 -0400
On Sat, Oct 28, 2006 at 03:03:24PM -0400, Howard Krakower wrote:
> Saturday, October 28, 2006, 11:41:57 AM, Martin Hicks wrote:
> MH> On Fri, Oct 27, 2006 at 03:54:48PM -0400, paul [ dot ] sadler [ at ] sdc-dsc [ dot ] gc [ dot ] ca wrote:
> >> ...and I can't meet the November meeting, but wanted to ask three questions before then. First, I should introduce myself -- "Hi, my name is Paul, and I'll be your interrogator for the next few minutes". My background is almost all M$ although I've done a bit of UNIX, MAC, no LINUX. Good with software, less so with hardware, programming experience is old (Basic, advanced basic, fortran, cobol, dos stuff). Once programmed a menu shell program in basic and dos, but only thing recent is ASP pages. Now here's the nightmare scenario -- that's my background, and I'm going to run a Linux server for my personal low-traffic website. Likely scenario for configuration at home is:
> >> 
> >> - External router dividing into website server and a second "internal" router
> >> - Internal router connecting second "test server" and fileserver, with two other PCs and a laptop
> MH> much complicated.  Most of those commercial routers have a "DMZ"
> MH> concept, which essentially forwards all external traffic to a single
> MH> machine on the internal side.  That's what you really want.
> To a greater extent I agree - I would suggest using a Linksys BEFSR41
> router (simple, easy to configure and, best of all, cheap=less to $50) and port
> forward the ports you are likely to use to the linux server (e.g. 80,
> 8080, 110, 25, 21, 22 etc, see
> http://www.iana.org/assignments/port-numbers )

I'd actually recommend the old linksys wrt54g or 54gs.  They run linux.
The newer ones are labelled a different way.

If you have one of these then you can install different Linux distros on
them and do whatever you want to.  I run OpenWRT (www.openwrt.org) on
mine and it does ssh, OpenSWAN/IPSec, I monitor traffic with MRTG, it
does ipv6, etc.  I also have ultimate control over the firewalling and
can do all the magic that is allowed with iptables and ip6tables.


Martin Hicks || mort [ at ] bork [ dot ] org || PGP/GnuPG: 0x4C7F2BEE

Attachment: signature.asc
Description: Digital signature